Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Microsoft — Vulnerabilities & Security Advisories 8272

Browse all 8272 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Microsoft:Windows 10 Version 1809WindowsWindows 10 Version 1507Windows 10 Version 1803Windows 10 Version 1607Windows Server 2019Microsoft 365 Apps for EnterpriseMicrosoft SharePoint Enterprise Server 2016Microsoft Edge (Chromium-based)Microsoft Office 2019Microsoft EdgeWindows 7Windows 10 Version 2004Windows 10 Version 20H2Windows 11 Version 24H2Windows 10 Version 2004 for 32-bit SystemsAzure Site Recovery VMWare to AzureWindows 10 Version 1703Microsoft SQL Server 2017 (GDR)Windows Server 2022Microsoft OfficeWindows Server 2016Microsoft SharePoint Enterprise ServerInternet Explorer 9Windows 11 version 22H2ChakraCoreInternet Explorer 11Windows Server 2008 R2 Service Pack 1Windows 10 Version 21H2Visual Studio Code
CVE IDTitleCVSSSeverityPublished
CVE-2025-59286 Copilot Information Disclosure Vulnerability — Microsoft 365 Copilot's Business ChatCWE-77 9.3 Critical2025-10-09
CVE-2025-59271 Redis Enterprise Elevation of Privilege Vulnerability — Azure Cache for Redis EnterpriseCWE-285 8.7 High2025-10-09
CVE-2025-59272 Copilot Information Disclosure Vulnerability — Microsoft 365 Copilot's Business ChatCWE-77 9.3 Critical2025-10-09
CVE-2025-59252 M365 Copilot Information Disclosure Vulnerability — Microsoft 365 Word CopilotCWE-77 9.3 Critical2025-10-09
CVE-2025-55321 Azure Monitor Log Analytics Spoofing Vulnerability — Azure MonitorCWE-79 9.3 Critical2025-10-09
CVE-2025-59247 Azure PlayFab Elevation of Privilege Vulnerability — Azure PlayFabCWE-269 8.8 High2025-10-09
CVE-2025-59246 Azure Entra ID Elevation of Privilege Vulnerability — Microsoft EntraCWE-306 9.8 Critical2025-10-09
CVE-2025-59218 Azure Entra ID Elevation of Privilege Vulnerability — Microsoft EntraCWE-284 9.6 Critical2025-10-09
CVE-2025-55322 OmniParser Remote Code Execution Vulnerability — OmniParserCWE-1327 7.3 High2025-09-24
CVE-2025-59251 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability — Microsoft Edge (Chromium-based)CWE-121 7.6 High2025-09-24
CVE-2025-59220 Windows Bluetooth Service Elevation of Privilege Vulnerability — Windows 10 Version 21H2CWE-362 7.0 High2025-09-18
CVE-2025-59216 Windows Graphics Component Elevation of Privilege Vulnerability — Windows 11 Version 24H2CWE-362 7.0 High2025-09-18
CVE-2025-59215 Windows Graphics Component Elevation of Privilege Vulnerability — Windows 11 Version 24H2CWE-416 7.0 High2025-09-18
CVE-2025-49728 Microsoft PC Manager Security Feature Bypass Vulnerability — Microsoft PC ManagerCWE-312 4.0 Medium2025-09-16
CVE-2025-47967 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability — Microsoft Edge (Chromium-based)CWE-357 4.7 Medium2025-09-16
CVE-2025-55319 Agentic AI and Visual Studio Code Remote Code Execution Vulnerability — Visual Studio CodeCWE-77 8.8 High2025-09-12
CVE-2025-55234 Windows SMB Elevation of Privilege Vulnerability — Windows 10 Version 1507CWE-287 8.8 High2025-09-09
CVE-2025-55227 Microsoft SQL Server Elevation of Privilege Vulnerability — Microsoft SQL Server 2016 Service Pack 3 (GDR)CWE-77 8.8 High2025-09-09
CVE-2025-55224 Windows Hyper-V Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-362 7.8 High2025-09-09
CVE-2025-54917 MapUrlToZone Security Feature Bypass Vulnerability — Windows 10 Version 1507CWE-693 4.3 Medium2025-09-09
CVE-2025-54915 Windows Defender Firewall Service Elevation of Privilege Vulnerability — Windows 10 Version 1507CWE-843 6.7 Medium2025-09-09
CVE-2025-54912 Windows BitLocker Elevation of Privilege Vulnerability — Windows 10 Version 1507CWE-416 7.8 High2025-09-09
CVE-2025-54911 Windows BitLocker Elevation of Privilege Vulnerability — Windows 10 Version 1507CWE-416 7.3 High2025-09-09
CVE-2025-54901 Microsoft Excel Information Disclosure Vulnerability — Microsoft 365 Apps for EnterpriseCWE-126 5.5 Medium2025-09-09
CVE-2025-54910 Microsoft Office Remote Code Execution Vulnerability — Microsoft 365 Apps for EnterpriseCWE-122 8.4 High2025-09-09
CVE-2025-54116 Windows MultiPoint Services Elevation of Privilege Vulnerability — Windows 10 Version 1507CWE-284 7.3 High2025-09-09
CVE-2025-54900 Microsoft Excel Remote Code Execution Vulnerability — Microsoft 365 Apps for EnterpriseCWE-122 7.8 High2025-09-09
CVE-2025-54115 Windows Hyper-V Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-362 7.0 High2025-09-09
CVE-2025-54114 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-362 7.0 High2025-09-09
CVE-2025-54113 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability — Windows Server 2008 R2 Service Pack 1CWE-122 8.8 High2025-09-09

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.